c) SVI int vlan 307 is the only SVI I should create and assign an IP there. I should shut int vlan 1.

Question:

Which switchports I should assign vlan 307 (management) to? I mean, my understanding is that I need physical ports associated with vlan in order to see vlan coming up, right? Please let me know what is your thought on that.

Re: Confirmation on best practice - VLAN

news2010a wrote:

He, he, yes I think that was you.

One more question:Is it a good practice assign the default-gateway on this layer 2 access-layer switch as IP on vlan 307, right?

That way on the upstream 4507 I would have a vlan 20, vlan 30 (etc.) and vlan 307 SVI configured. Then the default-gateway configured on the layer 2 switch would be the IP specified on vlan 307, correct?

Yes, on the L3 switch that does the inter-vlan routing you will have a L3 SVI for vlan 307. The IP address assigned to that L3 SVI should be used as the default-gateway for all your L2 switches.

c) SVI int vlan 307 is the only SVI I should create and assign an IP there. I should shut int vlan 1.

Question:

Which switchports I should assign vlan 307 (management) to? I mean, my understanding is that I need physical ports associated with vlan in order to see vlan coming up, right? Please let me know what is your thought on that.

Marlon

Not sure about c) - you would presumably have SVIs for vlan 20 and 30 ?

Anyway in answer to your question, a L3 SVI will be up/up if

1) there is a physical port that is up/up in that vlan

or

2) there is a trunk link that is up/up and the vlan is allowed on that trunk.

So you don't need to allocate any physical ports to vlan 307 if you are using this vlan to manage your switches, you just need to allow the vlan on the trunks between switches.

Re: Confirmation on best practice - VLAN

Jon, that is right the active trunk including vlan 307 should take care to bring the SVI up/up.

Regarding creating SVI's for vlan 20 and vlan 30, the other day a noble member of this forum reminded me that the SVI's are not involved in data forwarding and are used only for management capability.

That said, is there any technical reason for me to create SVI's for vlan 20 and vlan 30?

Marlon

the other day a noble member of this forum reminded me that the SVI's are not involved in data forwarding and are used only for management capability.

Hmmm, sounds like something i would say but "noble member" - can't be me

Yes your'e right, SVIs are not involved in data forwarding on a L2 switch. So i think i may have misunderstood in this post. If you were referring to setting up a L2 switch then yes, you would only have a L3 SVI for vlan 307 on that switch. You wouldn't have any other SVIs and indeed you can't.

On the L3 switch responsible for inter-vlan routing you would have SVIs for all 3 vlans, that was what i meant about c).

Re: Confirmation on best practice - VLAN

He, he, yes I think that was you.

One more question:Is it a good practice assign the default-gateway on this layer 2 access-layer switch as IP on vlan 307, right?

That way on the upstream 4507 I would have a vlan 20, vlan 30 (etc.) and vlan 307 SVI configured. Then the default-gateway configured on the layer 2 switch would be the IP specified on vlan 307, correct?

Re: Confirmation on best practice - VLAN

news2010a wrote:

He, he, yes I think that was you.

One more question:Is it a good practice assign the default-gateway on this layer 2 access-layer switch as IP on vlan 307, right?

That way on the upstream 4507 I would have a vlan 20, vlan 30 (etc.) and vlan 307 SVI configured. Then the default-gateway configured on the layer 2 switch would be the IP specified on vlan 307, correct?

Yes, on the L3 switch that does the inter-vlan routing you will have a L3 SVI for vlan 307. The IP address assigned to that L3 SVI should be used as the default-gateway for all your L2 switches.

Question
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
view more

Symptoms
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
view more

I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...
view more